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USE OF NODES TO MONITOR OR MANAGE PEER TO PEER 

NETWORKS 

Field of the Invention 

5 The present invention relates to the field of computer science, and 

particularly although not exclusively, to peer to peer networks of connected 
computer entities. 

Background to the Invention 

Known prior art computer networks comprise a plurality of interconnected 
computer entities. In the prior art, in order to manage prior art computer 
networks, network management systems have relied on centralisation of 
information at a management station. A management station can comprise one 
or more computer entities each provided with a management system allowing a 
human user to view a screen at which the whole network, or sections of the 
network are represented graphically as a set of nodes and links, and at which a 
set of parameters of a plurality of individual computers can be examined at the 
centralised management station. One or more human operators apply network 
management policies in order to perform network management operations such 
as configuring the network, detecting and repairing faults in the network, 
undertaking network accounting, optimising performance of the network, and 
enforcing security. 

Examples of prior art computer network management systems include the 
25 known HP Open View network management system. 

Another type of prior art computer network comprises a peer to peer 
network. In a peer to peer network, a plurality of computer entities communicate 
with each other on an equal basis. There is no centralised management system 
3 0 and no individual human network managers to apply overall control of policies for 
configuring the network. The nature of peer to peer networks is that they are 
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scaleable by addition of extra peer computer entities, which when joining the 
network, communicate with other peer computer entities on an equivalent basis. 
No single computer entity has the capability to manage or monitor the whole of 
the peer to peer network. 

One problem with prior art peer to peer networks, is that the control which a 
user has over their computer entity, once it has joined a peer to peer network, is 
very crude. The user has only a very basic control over which other computer 
entities can access the user's computer entity and there can arise conflicts in 
determining which user can access the computer entities it any one time in 
known peer to peer networks. 

Other problems which occur in prior art peer to peer computer networks are 
those of users being incentivised to join a network. In particular, by joining a 
network the owner of a computer entity may find that their computer is being used 
heavily by other users, and yet those other users provide few resources in return. 
Computer entities which routinely use services in a peer to peer network, but 
rarely provide a resource are known as 'free loaders' or Tree riders 1 . For example, 
in a Napster® network, a user may routinely download music files onto their own 
computer, but never supply any music files on their own computer for access by 
other users. 

It is a fundamental assumption in a peer to peer network, that each 
computer entity will be able to give resources to the network, as well as receive 
resources from the network. Any free loaders in the network therefore need to be 
isolated, and excluded from the network. However, in a prior art peer to peer 
network, since all computers are treated as equivalent by the peer to peer 
protocol, and there is no overall one person or computer in charge of network 
management, there is no mechanism for isolation of a free loader computer in a 
network. 
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Summary of the Invention 

According to a first aspect of the present invention there is provided a 
method for controlling a computer entity to participate in a peer to peer network of 
5 a plurality of computer entities, said method comprising: for each computer entity: 
operating a peer to peer protocol for enabling said computer entity to utilise 
resources of at least one other said computer entity of said network, and for 
enabling at least one other said computer entity of said network to utilise 
resources of said computer entity; and managing at least one other computer 
10 entity in said network. 

In one specific implementation, there is provided electronic data signals for 
controlling a computer entity to participate in a peer to peer network, said 
electronic data signals comprising program instructions for: operating a peer to - 
15 p eer protocol for enabling said computer entity to utilise resources of at least one 
other computer entity of said network, and for enabling at least one other said 
computer entity of said network to utilise resources of said computer entity; and 
managing at least one other computer entity of said network. 

20 In another specific implementation there is provided a method of managing 

a network comprising a plurality of peer to peer computers, said method 
comprising; at each said computer entity; determining locally at said computer 
entity a local policy for management of at least one target computer entity 
comprising said network; receiving a plurality of local policy messages from a 

25 plurality of computer entities comprising said network, each said local policy 
message describing a local policy applied at a corresponding respective said 
computer entity to said target computer entity, and determining from said plurality 
of received local policy data, and from said locally generated local policy, a 
network management policy to be applied to said target computer entity by said 

3 o local computer entity. 
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ln yet a further specific implementation, there is provided a computer entity 
comprising: a set of resources; a peer to peer networking component for allowing 
said computer entity to engage other computer entities on a peer to peer basis; 
and a network management component for enabling a said computer entity to 
participate in management of a peer to peer network. 

In yet a further specific implementation, there is provided a data storage 
medium comprising program data for controlling a computer entity to participate 
in a peer to peer network, said program data comprising instructions for: 
operating a peer to peer protocol for enabling said computer entity to utilise 
resources of at least one other computer entity of said network, and for enabling 
at least one other said computer entity of said network to utilise resources of said 
computer entity; and managing at least one other computer entity of said 
network. 

In yet a further specific implementation, there is provided a method for 
controlling a computer entity to participate in a peer to peer network of a plurality 
of computer entities, said method comprising for each computer entity: operating 
a peer to peer protocol for enabling said computer entity to utilise resources of at 
least one other said computer entity of said network, and for enabling at least one 
other said computer entity of said network to utilise resources of said computer 
entity; and monitoring at least one other computer entity in said network. 

In yet a further specific implementation, there is provided a data storage 
medium comprising program data for controlling a computer entity to participate 
in a peer to peer network, said program data comprising instructions for. 
operating a peer to peer protocol for enabling said computer entity to utilise 
resources of at least one other computer entity of said network, and for enabling 
at least one other said computer entity of said network to utilise resources of said 
computer entity; and monitoring at least one other computer entity of said 
network. 
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Features of specific implementations according to the invention are as 
described in the detailed description herein, and the scope of the invention is 
. limited only by the features of the claims herein 

5 Brief Description of the Drawings 

For a better understanding of the invention and to show how the same may 
be carried into effect, there will now be described by way of example only, 
specific embodiments, methods and processes according to the present 
invention with reference to the accompanying drawings in which: 

10 

Fig. 1 illustrates schematically several computers connected using a peer to 
peer networking protocol according to a specific implementation of the present 
invention; 

15 Fig. 2 illustrates schematically components of a computer entity adapted for 

becoming a member of a peer to peer network, and operating in accordance with 
a specific method of the present invention; 

Fig. 3. illustrates schematically a network of peer to peer connected 

2 o computer entities represented as a topology of nodes and links; 

Fig. 4 illustrates schematically logical components of a computer entity 
according to a specific embodiment of the present invention; 

25 Fig. 5 illustrates schematically process steps carried out by a member of a 

peer to peer computer network for determining a local policy, and assessing a 
group policy of a plurality of members of the network; * 

Fig. 6 illustrates schematically process steps carried out by a member of a 

3 o peer to peer network for isolation of a freeloading member; 
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Fig. 7 illustrates schematically process steps carried out by a peer member 
for monitoring a target member; 

Fig. 8 illustrates schematically a database stored in a peer member for 
monitoring a plurality of other members of a peer to peer network; and 

Fig. 9 illustrates schematically process steps carried out by a peer member 
for determining a local and global policy towards a specific target member of a 
peer to peer network 

Detailed Desc ription of a Specific Mode for Carrying Out the Invention 

There will now be described by way of example a specific mode 
contemplated by the inventors for carrying out the invention. In the following 
description numerous specific details are set forth in order to provide a thorough 
understanding of the present invention. It will be apparent however, to one skilled 
in the art, that the present invention may be practiced without limitation to these 
specific details. In other instances, well known methods and structures have not 
been described in detail so as not to unnecessarily obscure the present invention. 

In this specification, the term computer entity is used to encompass many 
types of computer including personal computers, server computers, arid other 
computing platforms such as personal digital assistant (PDA) devices, palmtop 
computers, laptop computers and the like. Communications links between 
computers may be local area network links, wide area network links and internet 
links, and may be carried on a variety of technologies for example wireless 
connections or signals earned on local loop copper cables, or on coaxial cables. 

Specific embodiments disclosed herein may enable a computer entity which 
is a member of a peer to peer network of computer entities, not only to provide its 
own resources to a network, and receive resources and services from the 
network, but as a background activity, to provide a network management service 
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to the network, which may include network monitoring and monitoring of 
individual computers in the network. 

Referring to Fig. 1 herein, there is illustrated schematically a network of 
5 computer entities arranged on a peer to peer basis, where each computer is 
provided with a peer to peer protocol for interacting with other computers in the 
network. Each of a plurality of computer entities 100-103 communicates with one 
or more of the other computer entities within the network, and can act either as a 
client to any other computer entity in the network, and/or as a server to another 

10 computer entity. Each computer entity therefore has two modes of operation, 
firstly acting as a client, where for example it may access data or services stored 
on another computer entity in a network, or secondly acting as a server, in which 
case another computer entity may access data or services stored on the 
computer entity itself. In a general case of a peer to peer environment of 

15 connected computer entities, each computer entity represents topological^ a 
node in a network. Connectivity between nodes can be arbitrary in the general 
case, with any node in the network connecting to any other node in the network. 

Within a peer to peer network as described in Fig. 1 herein, each peer 
20 computer contributes resources for use by other computers, as well as 
consuming services of the network. During periods of inactivity, any spare 
resources, such as data processing capacity, data storage capacity, connectivity 
resource or the like, are used to perform a distributed management function 
according to specific embodiments. The management functionality is packaged 
25 with a peer to peer overlay protocol, and is arranged to activate when the peer to 
peer protocol is installed or is activated, so that the computer entity is made to 
operate the management activity when it joins in a peer to peer network. In a 
specific mode of implementation, operation of the management functionality is 
activated as a condition of operating the peer to peer protocol. 

30 

According to specific implementations of the present disclosed herein, a 
network of peer to peer connected computer entities are linked together via the 
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peer to peer protocol. Each computer entity provides resources to the network, 
and is able to use resources of the network, including services provided by other 
computer entities in the network. During periods of inactivity, the resources 
provided by the computer entities are used to provide an automatic distributed 
network management function. During an idle period of a computer entity, the 
computer monitors the behaviour of one more other computer entities within the 
network, and contributes to the management of the one or more other computers. 
Monitoring and management may include the following activities: 

• Remote virus scanning of other computer entities n the network. 

• Observing group behaviour in a group of computer entities within the 
network 

• Generating alert messages to alert other computer entities in the 
network that a particular computer entity is faulty or is misbehaving 

• Generating virus alert messages to alert other computer entities in the 
network that a particular computer entity has a virus 

• Placing a faulty computer entity into quarantine 

• Performing a diagnosis of one or more faulty computer entities in the 
network. 

• Application of voting protocols for recovering from large network failures. 

• Detecting security breaches in said network. 

• Detecting performance problems of computers in said network. 

Referring to Fig. 2 herein, there is illustrated schematically components of a 
computer entity, which is a peer member of a network of peer to peer computer 
entities. The computer 200 comprises one or more communications ports 201 for 
communicating with other computer entities within the network; a data processor 
202; a memory device 203; a data storage device 204, for example a hard disk 
data storage device or a RAID array; a user interface 205, for example 
comprising a visual display monitor, keyboard and pointing device such as a 
mouse, trackball, or the like; an operating system 206, for example Microsoft 
Windows, Linux, or Unix; a peer to peer network protocol layer 207 comprising a 
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middle ware program component for applying a peer to peer network protocol, for 
example the known Gnutella protocol or similar; a network management 
application 208, as provided by a specific embodiment; a set of files 209, for 
example data files, mp3 files, image data files, text data files or the like which 
may be made available for use by one or more other computers in the network, 
one or a plurality of local applications 210 for providing local functionality of the 
computer; and one or more service applications 211 for providing a service, 
which can be assessed by other computers within the network. 

Each computer entity has a set of resources which it can use itself, and 
which may be available for use by other computer entities within the network. 

In this specification, the term 'resources 5 means any functionality provided 
by a computer entity. Resources may be transferable, that is downloadable to 
another computer entity, for example data files, application program files, or may 
be non-transferable, that is resources which must remain at the computer entity 
which provides them. Example of non-transferable resources include data 
processing power, data storage capacity, communications capacity or 
connectivity, or services which are provided by the computer entity and which are 
non-transferable to another computer entity. 

At any time, the resources of the computer entity may be utilised to a 
varying extent. At some times, the computer will be in an idle state or a state of 
low activity, whereas at other times, the computer may be busy providing a 
service, processing data, or engaging in communications with other computers in 
the network. In particular, the utilisation of the data processing capacity, memory, 
communications ports and data storage, during operation of the computer, may 
be at a level which is low enough that those resources can be used to operate a 
network management service application 208 to provide a network management 
service on behalf of the network as a whole. 
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By providing a network management service to the rest of the network, as a 
background activity, ensures that each node provides a contribution to the 
network as a whole, and limits Treeloading\ since each node contributes to a 
network management activity which is beneficial to the community of peer 
computers. Further, the network management and monitoring tasks earned out 
includes operations of identifying and isolating freeloading computers entities 
within the network, as well as other activities which benefit the continuation and 
integrity of the network as a whole, such as limiting propagation of viruses, and 
limiting the effects of malfunction of individual computers. 

Referring to Fig. 3 herein, there is illustrated schematically a network of peer 
to peer connected computer entities 300-309, where computer entities are 
represented as nodes, and communications links between the computer entities 
are represented as lines joining the nodes. Every peer within the network has a 
stored network map, so that each peer computer has knowledge of the topology 
of all or part of the network. Individual selected computer entities may be 
provided with a network management service application 208. Since the 
management service is not a centralised service, but is distributed amongst one 
or a plurality of computers in the network, no one computer entity has overall 
control of network management, but the network management function is shared 
between one or more computers. In a minimum implementation, a single 
computer entity may be provided with the network management services 
application. In a saturated deployment, all computer entities within the network 
may be provided with their own individual network management services 
application. For a plurality of computers within a network, in between the 
extremes of on the one hand only one computer having a network management 
application, and on the other hand, all computers being provided with a network 
management application, there are various degrees of deployment of network 
management where a varying number of computers within the network may 
perform network management services. However, since a basic network 
management application may be the same for each computer entity, providing a 
minimum set of management services, each computer entity performs those 
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management services without being subordinated to any other single computer 
entity within the network. In performing network management services, each peer 
computer entity may have equal authority to any other individual peer computer 
entity within the network. However, an individual computer entity may be 
subordinated to a group of other peer computer entities within the network acting 
together, provided those other peer computer entities cooperate to vote for 
subordinating a particular computer entity in the network. 

A computer entity may be a member of more than one different peer to peer 
network. For example, a computer may be a member of a Gnutella network, and 
at the same time be a member of a Napster network, by virtue of downloading 
and running the Napster software which will allows the computer to download 
and run music files from other computers within the Napster network, as well as 
operating the Gnutella protocol. 

On joining a peer to peer network, a computer entity loads a peer to peer 
protocol software, as well as a network management service program, wherein 
the peer to peer protocol program and the network management service program 
are interlinked such that whenever the computer entity takes part in the peer to 
peer network using the peer to peer protocol, the network management service 
program activates and tuns as a background service. By packaging the peer to 
peer protocol together with a network management services application, 
incidences of free loading can be reduced, since every computer which 
participates in the peer to peer network, will also be providing a network 
management service at the same time, by virtue of the automatic operation of the 
management service program. 

Each peer computer comprises a set of resources comprising a data 
processing capacity, a bit rate capacity, data storage capacity, and data content; 
a resource encapsulation layer for accessing the resources; a higher level service 
layer for providing a set of higher level services provided by the computer entity, 
for example provided by one or more services applications; and a set of core 
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networking services comprising a network overlay service for enabling the 
computer to become a member in a peer to peer computer network, and a 
network management component which operates using the resources, when the 
resources are not being used by the higher level services, or in response to a 
service request received from another peer computer. Other core services may 
include accounting services, fault diagnosis services. 

Referring to Fig. 4 herein, there is illustrated schematically logical 
components of a computer entity which is enabled to provide network 
management services within a peer to peer network. 

The computer entity comprises a set of resources 401, including data 
processing capability, bit rate capacity (bandwidth), data storage, and data 
content, for example music files, images files, text files; a resource encapsulation 
layer 402 which receives service requests from one or more peer computers 
and/or a user interface of the computer, the encapsulation layer encapsulating 
the details of supply of resources from the other peer computers or human users; 
a set of higher level services 403, which can be accessed by way of service 
requests received from other peer computer entities within the network, or from a 
human user of the computer entity, the higher level services comprising for 
example e-commerce services or the like; and a set of core services 404 
including network management services, including network overlay services for 
establishing the computer as a member of a community of peer to peer 
connected computers in a peer to peer network, accounting functionality, fault 
diagnosis functionality and security services. The peer to peer overlay services 
govern how the peer computer entity communicates with other peer computer 
entities. Within the core services 404, the network management services and the 
peer to peer overlay functionality are linked, such that whenever the computer is 
engaging in a peer to peer network using the peer to peer overlay services, the 
network management functionality is automatically activated. 
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Each aspect of network management, for example fault management, 
exclusion of nodes, quarantine of nodes, controlling differential pricing for 
different types of node are controlled by a separate application program 
component in the network management program. 

5 

Referring to Fig. 5 herein, there is illustrated schematically process steps 
carried out by a computer entity for assessing a global behavior of the network, 
from a plurality of messages received from other peer computer entities within the 
network. In process 500, the computer entity receives messages asynchronously 

10 from a plurality of other computer entities within the network. Each message 
describes a policy or action being taken by another peer computer entity with 
regard to its own behavior, for example with regard to its behavior relative to 
another computer entity within the network. In process 501, the local computer 
entity determines locally its own assessment of the global behavior of the 

15 network, from the plurality of messages received from the other peer computers 
within the network. In process 502, the computer entity assesses whether the 
global behavior of the whole network which the local computer entity has 
determined is beneficial to the network as a whole. In process 503, the local 
computer entity exchanges messages concerning the global behavior of the 

20 network with other peer computers within the network. The local peer computer 
entity sends out global behavior messages which describe the assessment of the 
local computer concerning an aspect of the global behavior of the network. 
Similarly, the local computer receives other global behavior messages from other 
peer computer entities in the network, which describes their assessments of 

2 5 global behavior of the network. In process 504, the local computer entity 

engages in a voting protocol with other peer computers in the network to 
determine amongst a group of peer computer entities which global behavior they 
will all adopt. In process 505, once the result of the voting is known, the local 
computer entity adopts a global behavior according to the result of the voting 

3 0 between all peer computer entities within the group. The peer computers' 

assessment of the global behavior in processes 501 , and the subsequent voting 
procedures in processes 503 - 505 may be activated periodically by each 
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computer entity, so that voting and modification of global behavior is an ongoing 
process throughout the network. Alternatively, all computer entities within a 
group may make an assessment and perform voting at a same time, so that 
global changes of behavior are assessed periodically throughout the network at 
5 intervals. 

In general, within a network, the overall effect of the protocol applied locally 
at each computer entity is that: 

10 • Each computer entity forms its own policy regarding each other 

computer entity of which that local computer entity is aware, within the 
network. 

• Each local computer entity broadcasts its policy data to each other 
computer entity within the network, of which it is aware. 
15 • Each computer entity takes into account the received policy data from 

other computer entities within the network, in order to locally determine a 
global policy data for each of the computers in the network, and the 
applies that global policy data locally itself. 

2 o Types of decision which may be taken by local computers individually in 

the network, but having consideration for the polices applied at other computers 
include: 

• Whether to exclude a particular node from accessing a particular 
2 5 type of resource. 

• Whether to exclude or include a particular node in the network at all. 

• Whether to quarantine a particular node. 

30 

• Whether to control access to communal resources. 
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• Whether nodes are charged for accessing resources, and whether 
to charge different nodes different rates for accessing particular 
resources. 

• Whether to isolate a node which is downloading high level services or 
resources from many other nodes, but which is not providing any high 
level services or recourses itself. 



Referring to Fig. 6 herein, there is illustrated schematically process steps 

1 o carried out by a peer computer entity for isolating another computer entity in the 

network, which may be freeloading. In process 600, the peer computer entity 
identifies a freeloader computer in the network. This is done by selecting a peer 
computer entity in the network, either randomly, or as part of a sequential 
selection process, and testing the selected computer entity to see if it is capable 

15 of providing resources. Any computer entities which, upon request, fail to provide 
a requested resource, or fail to acknowledge a test request, are identified as 
potentially being freeloaders. In process 601, the peer computer determines 
locally its own policy action towards the freeloader computer. That policy action 
may, for example, be to isolate the freeloader computer, and not to respond to 

20 any requests from the freeloader computer. In process 602, the peer computer 
entity broadcasts its own local action which it is adopting towards the freeloading 
computer entity to other peer computers in the network. Since other peer 
computers are running the same process asynchronously and in parallel to the 
local computer entity, each node provided with a network management 

2 5 component formulates its own assessment of other peer computers within the 

network, determines locally its own action to be taken relating to specific other 
computer entities within the network, and broadcasts that information to other 
peer computer entities within the network. The broadcast takes the form of a 
message comprising a data field identifying the subject of the policy action, that 

3 0 is, identifying the freeloader computer, and a data field identifying the type of 

policy action which the local peer computer entity has adopted in relation to that 
freeloading computer entity. 
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The peer computer entity may adopt its own policy action locally, until such 
time as other peer computers within the network vote to override that policy, or 
may continue to adopt a previous policy until a vote on the new policy has been 
taken by other peer computer entities in the network. 

Referring to Fig. 7 herein, there is illustrated schematically process steps 
carried out by a peer computer entity for monitoring another peer computer entity 
in a network. In process 700, the local peer computer selects a target peer 
computer, being another peer computer entity in the network. Selection may be 
random from a list of other connected peer computers in the network, or may be 
as a result of a sequential selection or selection according to a search pattern 
amongst a list of peer computer entities. In process 701, the local computer 
generates a service request signal, requesting a service from the selected target 
computer, and sends that service request to the target computer in process 702. 
In process 703, the local computer monitors the response to the service request 
signal. If the target computer entity responds to the test request signal positively, 
that is, by offering supply of a resource, then that target computer entity is not 
freeloading, and is capable, and ready to supply a service to other computers in 
the network. However, if no response is received, or if the service request is 
denied, then the target computer entity may either be busy, or may be 
freeloading. The target computer is then recorded within the local computer as 
being potentially a freeloading computer. To test whether the target computer 
entity is busy or is freeloading, the local computer entity may repeat the 
generating and sending of a service request signal to the target computer, to see 
if a positive response issues from the target computer for a second service 
request, and subsequent service requests. The mechanism for determining 
whether a computer entity is freeloading or is busy is an implementation specific 
design detail of the management program, that is, determining how many test 
signals are to be sent, how many positive or negative responses are to be taken 
in determining whether a target computer is freeloading or not, are all designable 
parameters. 
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After each service request signal, if a target computer entity responds to 
that signal, then it may be necessary to cancel the service request signal by 
sending a cancellation message to the target computer entity, so that actual 
5 utilisation of resources does not occur during the test, in process 704. 

Each computer entity within the network carries out monitoring as a 
background operation of one or more other computer entities in the network. 
Consequently, all computer entities are continuously monitoring each other to see 

10 if any computer entity in the network is freeloading, and when any computer entity 
identifies a freeloader, it can locally isolate that freeloader, and send messages to 
other computer entities within the network, alerting other computer entities to the 
presence of a freeloader. The other computer entities in the network may vote 
upon a global action to be taken in respect of the freeloading computer entity, in 

15 particular whether to exclude that computer entity from the network or not. 

Each computer entity within the network, may then adopt the global policy 
towards the entity. 

2 0 Referring to Fig. 8 herein, there is illustrated schematically, data stored in 

the local database at a local computer entity, the data concerning characteristics 
and properties of other peer computer entities within a network. Each peer 
computer entity is identified by either its internet address and/or a user account 
number. The local computer entity stores a list of properties, property 1 , property 

25 2 property N, each property describing a particular aspect of operation of a 

peer computer entity within the network, and a set of one of more policies, policy 
1 - Policy N, which determines how the local computer will cooperate with other 
peer computers in the network, and how the local computer will vote within a 
group of peer computers to determine a global network behaviour. The policy 

3 0 information, determines how the local computer entity will treat each other peer 

computer entity in the network. For example a stored policy may be not to send 
any files to that particular peer computer entity, or not to receive any files from 
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that particular computer entity, in a case where the other computer entity is 
suspected of having a virus. 

Referring, to Fig. 9 herein, an example of how a peer computer entity 
operates for an operation of assessing whether to exclude a target peer computer 
entity from the network now follows. 

The local peer computer entity may test the target computer entity in 
process 900 for a particular parameter to be measured, for example, whether the 
target computer entity is faulty, or is freeloading. Various test procedures can be 
involved, such as requesting a file or service, or testing a received file for viruses. 
In process 901, if the target computer entity is tested to have a detrimental 
characteristic, such as being faulty or freeloading, then in step 902, the local 
computer generates a local policy towards the target computer entity, in this 
example the policy being to exclude the target computer entity from the network. 
The policy may be adopted from a set of nodes pre-stored in the management 
program to take account of various situations such as freeloading, or a virus. In 
process 903, the local computer entity broadcasts its local policy data concerning 
the target computer to all other computer entities in the network of which it is 
aware, to inform those computer entities of the local computer entity's local policy 
towards the target computer. In process 904, the local computer entity collects 
responses from other computers in the network, concerning their local policies 
towards the target computer. In process 905, the local computer entity applies a 
voting procedure comprising a set of stored voting rules, in which each of the 
responses received from the other computer entities in the network, concerning 
the target computer are considered, and resulting in an overall vote as to whether 
the target computer entity will be excluded from the network or not. The voting 
rules are implementation specific, and may be by a simple majority rule, or by a 
pre-set percentage number of the computer entities voting that the computer 
target be excluded from the network. In process 906, the local computer entity 
adopts as its local policy a policy which has been elected by the voting procedure 
carried out in process 905. For example, where the majority vote is in favor of 



^ 300203615 -1GB 

-19- 

retaining the target computer entity on the network, the local computer entity will 
follow the result of the majority vote, and even though it has tested the target 
computer entity to be faulty, it will apply the majority vote in order to retain that 
target computer entity in the local computer entity's own list of members of the 
5 peer network. 



The local computer entity does not have to apply a global policy only as a 
result of a policy which the local computer has itself initiated but can adopt a 
policy initiated by another peer. For example instead of testing the target 
10 computer entity itself, the local computer entity could engage in the voting 
procedure, as a result of receiving a message from another computer entity, that 
the other computer entity's local policy is to exclude the target computer from the 
network. 

15 A plurality of service requests are received at each node. Each node 

may monitor the number and type of service requests received from each other 
node in the network, and analyse those service requests, to see which other 
nodes in the network have a high demand for high level services, or content. 



20 Whereas prior art network management systems are hierarchical and 

centralised, and generally focused on management of faults in computer 
networks, specific implementations are distinguished by applying network 
management in a peer to peer environment, by utilising otherwise under utilised 
resources on nodes within a network, by running network management services 

25 as a background operation during otherwise idle times of a node, and by applying 
network management to manage resources and content. 

Further, specific implementations provide a method and apparatus for 
automatically taking action upon discovering imbalances in resource utilisation 
3 o and resource supply within a peer to peer network. 
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Claims: 

1 . A method for controlling a computer entity to participate in a peer to 
peer network of a plurality of computer entities, said method comprising: 

for each computer entity: 

operating a peer to peer protocol for enabling said computer entity to utilise 
resources of at least one other said computer entity of said network, and for 
enabling at least one other said computer entity of said network to utilise 
resources of said computer entity; and 

managing at least one other computer entity in said network. 

2. The method as claimed in claim 1, wherein said process of 
managing at least one other computer entity in said network comprises: 

determining at least one policy by which said computer entity will interact 
with said at least one other computer entity. 

3. The method as claimed in claim 1 or 2, wherein said process of 
managing at least one other computer entity comprises: 

adopting a policy towards said at least one other computer entity, said policy 
selected from a set of pre-determined polices for determining a relationship 
between said computer entity and said at least one other computer entity. 

4. The method as claimed in any one of claims 1 to 3, wherein 
managing at least one other computer entity in said network comprises a process 
selected from the set: 

placing said at least one other computer entity in quarantine; 
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controlling access by said at least one computer entity to a communal 
resources stored on said computer entity; or 

5 applying a charge for utilisation by said at least one other computer entity of 

a communal resource. 

5. Electronic data signals for controlling a computer entity to 
participate in a peer to peer network, said electronic data signals comprising 

10 program instructions for: 

operating a peer to peer protocol for enabling said computer entity to utilise 
resources of at least one other computer entity of said network, and for enabling 
at least one other said computer entity of said network to utilise resources of said 
15 computer entity; and 

managing at least one other computer entity of said network. 

6. A method of managing a network comprising a plurality of peer to 
20 peer computers, said method comprising; 

at each said computer entity; 

determining locally at said computer entity a local policy for management of 
25 at least one target computer entity comprising said network; 

receiving a plurality of local policy messages from a plurality of computer 
entities comprising said network, each said local policy message describing a 
local policy applied at a corresponding respective said computer entity to said 
3 o target computer entity, and 
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detemriining from said plurality of received local policy data, and from said 
locally generated local policy, a network management policy to be applied to said 
target computer entity by said local computer entity. 

7. The method as claimed in claim 6, further comprising: 

broadcasting said network policy to a plurality of peer computers within said 
network. 

8. The method as claimed in claim 6 or 7, comprising: 
monitoring said at least one target computer entity; and 

depending upon a result of said monitoring, adopting a pre-determined 
policy from a stored set of policies, and applying said policy to said at least one 
target computer entity. 

9. The method as claimed in any of claims 6 to 8, wherein a said 
policy comprises a policy selected from the set: 

a policy for determining whether or not to place a faulty computer entity into 
quarantine; 

a policy for generating a virus alert message for alerting other computer 
entities in the network that a said target computer entity has a virus; 

a policy for generating a fault alert message for alerting other computer 
entities in the network that said target computer entity is faulty; 

a policy determining whether to exclude said target computer entity from 
accessing a particular type of resource; 
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a policy for determining whether to exclude said target computer entity from 
the network; 

a policy for control of access by said target computer entity to a communal 
5 resource; a charging policy for charging said target computer entity for accessing 
a resource. 

10. The method as claimed in any one of claims 6 to 9, comprising 
applying a monitoring operation to said target computer entity, said monitoring 

10 operation selected from the set: 

a monitoring operation for remote virus scanning of said target computer; 

a monitoring operation for observing a group behaviour of a group of target 
is computer entities within said network; 

a monitoring operation for detecting a security breach in said network; 

a monitoring operation for detecting a performance problem of said at least 
2 o one target computer. 

11. The method as claimed in any one of claims 6 to 10, wherein said 
step of determining a network management policy comprises: 

25 applying a voting protocol for adopting a common policy amongst a plurality 

of said computer entites. 

1 2. A computer entity comprising: 



30 



a set of resources; 
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a peer to peer networking component for allowing said computer entity to 
_ engage other computer entities on a peer to peer basis; and 

a network management component for enabling a said computer entity to 
participate in management of a peer to peer network. 

13. The computer entity as claimed in ciaim 12, configured such that 
said management component is activated whenever said peer to peer network 
component is operational. 

14. The computer entity as claimed in claim 12 or 13, wherein said 
network management component comprises a program data which controls said 
resources to perform a network management service. 

15. The computer entity as claimed in any one of the claims 12 to 14, 
wherein said network management component operates to apply at least one 
policy for determining a mode of operation of said computer entity in relation to at 
least one other said computer entity of said network. 

16. The computer entity as claimed in any one of claims 12 to 15, 
wherein said network management component operates to: 

communicate with a plurality of other computer entities of said network for 
sending and receiving policy data concerning an operational policy towards a 
target computer entity; and 

determine, from a consideration of policy data received from said other 
computer entities, a global policy to be adopted by each computer entity in said 
network, towards a said target computer entity. 
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17. The computer entity as claimed in claim, wherein said network 
management component operates to monitor one or more target computer 
entities. 

18. A data storage medium comprising program data for controlling a 
computer entity to participate in a peer to peer network, said program data 
comprising instructions for: 

j operating a peer to peer protocol for enabling said computer entity to utilise 
resources of at least one other computer entity of said network, and for enabling 
at least one other said computer entity of said network to utilise resources of said 
computer entity; and 

managing at least one other computer entity of said network. 

19. A method for controlling a computer entity to participate in a peer to 
peer network of a plurality of computer entities, said method comprising for each 
computer entity: 

operating a peer to peer protocol for enabling said computer entity to utilise 
resources of at least one other said computer entity of said network, and for 
enabling at least one other said computer entity of said network to utilise 
resources of said computer entity; and 

monitoring at least one other computer entity in said network. 

20. A data storage medium comprising program data for controlling a 
computer entity to participate in a peer to peer network, said program data 
comprising instructions for: 

operating a peer to peer protocol for enabling said computer entity to utilise 
resources of at least one other computer entity of said network, and for enabling 
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at least one other said computer entity of said network to utilise resources of said 
computer entity; and 



monitoring at least one other computer entity of said network. 
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Abstract 

USE OF NODES TO MONITOR OR MANAGE PEER TO PEER 
NETWORKS 

A protocol method for controlling a computer entity to participate in a peer to 
peer network, said electronic data signals comprising program instructions for: 
operating a peer to peer protocol for enabling said computer entity to utilise 
resources of at least one other computer entity of said network, and for enabling 
at least one other said computer entity of said network to utilise resources of said 
computer entity; and providing a network management service for managing at 
least one other computer entity of said network. 
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